IBM Spectrum Protect Plus could allow a remote attacker to traverse directories on the system which can result in the creation of arbitrary files on the system or files being overwritten.
Affected product(s) and affected version(s):
Affected Product(s) | Version(s) |
IBM Spectrum Protect Plus | 10.1.0-10.1.5 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6116488
The post Security Bulletin: Directory Traversal vulnerabilities in IBM Spectrum Protect Plus (CVE-2020-4240, CVE-2020-4209) appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/3axwz1c
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.